Purple News
- The Simplest and Last Internet-Only ACL You’ll Ever Need
- Talkin’ About Infosec News – 11/30/2023
- Talkin’ About Infosec News – 11/22/2023
- Talkin’ About Infosec News – 11/13/2023
- Unpacking the Packet: Demystifying the Internet Protocol
- Talkin’ About Infosec News – 11/10/2023
- Talkin’ About Infosec News – 11/09/2023
- Abusing Active Directory Certificate Services (Part 3)
- Talkin’ About Infosec News – 11/4/2023
- Rotating Your Passwords After a Password Manager Breach
- Throwback Thursday | I Got an Alert, Now What?
- Throwback Thursday | Why Developers Hate Infosec
- Throwback Thursday | Exploiting Persistent XSS
- Throwback Thursday | Hackers in the Boardroom
- Throwback Thursday | Tool Demo – Riverside
- Throwback Thursday | The Fools Gold Rush to Compliance
- Throwback Thursday | Is the PKI Sky Falling?
- Throwback Thursday | What’s Old is Gold
- Throwback Thursday | Wireless Attack Killchain for N00bs
- Throwback Thursday | Six Things No One !@#$%^& Told Me About Pentesting
- AgentSmith HIDS – Host Based Intrusion Detection
- padre – Padding Oracle Attack Exploiter Tool
- Privacy Implications of Web 3.0 and Darknets
- DataSurgeon – Extract Sensitive Information (PII) From Logs
- Pwnagotchi – Maximize Crackable WPA Key Material For Bettercap
- HardCIDR – Network CIDR and Range Discovery Tool
- Socialscan – Command-Line Tool To Check For Email And Social Media Username Usage
- CFRipper – CloudFormation Security Scanning & Audit Tool
- CredNinja – Test Credential Validity of Dumped Credentials or Hashes
- assetfinder – Find Related Domains and Subdomains
- Aladdin - Payload Generation Technique That Allows The Deseriallization Of A .NET Payload And Execution In Memory
- Windiff - Web-based Tool That Allows Comparing Symbol, Type And Syscall Information Of Microsoft Windows Binaries Across Different Versions Of The OS
- HiddenDesktop - HVNC For Cobalt Strike
- DynastyPersist - A Linux Persistence Tool!
- MaccaroniC2 - A PoC Command And Control Framework That Utilizes The Powerful AsyncSSH
- Mass-Bruter - Mass Bruteforce Network Protocols
- OSINT-Framework - OSINT Framework
- Iac-Scan-Runner - Service That Scans Your Infrastructure As Code For Common Vulnerabilities
- ICS-Forensics-Tools - Microsoft ICS Forensics Framework
- Deepsecrets - Secrets Scanner That Understands Code
- CureIAM - Clean Accounts Over Permissions In GCP Infra At Scale
- MemTracer - Memory Scaner
- LightsOut - Generate An Obfuscated DLL That Will Disable AMSI And ETW
- Bread - BIOS Reverse Engineering And Advanced Debugging
- LTESniffer - An Open-source LTE Downlink/Uplink Eavesdropper
- Padre - Blazing Fast, Advanced Padding Oracle Exploit
- Goblob - A Fast Enumeration Tool For Publicly Exposed Azure Storage Blobs
- Forbidden-Buster - A Tool Designed To Automate Various Techniques In Order To Bypass HTTP 401 And 403 Response Codes And Gain Access To Unauthorized Areas In The System
- Hades-C2 - Hades Basic Command And Control Server
- Crawlector - Threat Hunting Framework Designed For Scanning Websites For Malicious Objects
- CryptoChat - Beyond Secure Messaging
- Afuzz - Automated Web Path Fuzzing Tool For The Bug Bounty Projects
- Red Canary Mac Monitor - An Advanced, Stand-Alone System Monitoring Tool Tailor-Made For macOS Security Research
- Elevationstation - Elevate To SYSTEM Any Way We Can! Metasploit And PSEXEC Getsystem Alternative
- Dvenom - Tool That Provides An Encryption Wrapper And Loader For Your Shellcode
- Google Dork: #red-team #red-teaming
- #red-teaming
- #red-team
- #redteaming
- #redteam
- #pentest
- #pentesting
- #bug-bounty
- #bugbounty